Denial of service vulnerability in nft_flush_table function in the Linux kernel

ID: oval:org.secpod.oval:def:25168

Date: (C)2015-06-23 (M)2018-01-05

Class: VULNERABILITY

Family: unix

The host is installed with kernel on Red Hat Enterprise Linux 7 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a command to flush rules referencing chains that had already been deleted. Successful exploitation could allow attackers to crash the service.